A nightly build version of a machine-learning framework dependency has been compromised. The package ran malicious code on affected systems and stole data from unsuspecting users.
The post Machine-Learning Python package compromised in supply chain att…